Lilith Lilith.
CS EN PL
Start

Microsoft showed Project Ire classifying a 253 KB LOTUSLITE DLL variant as malware even though VirusTotal showed only 1 of 72 vendors detecting it on May 28, 2026. The important part is not attribution, but an agent reading behavior instead of matching IOC lists.

The agent received a 253 KB DLL and classified it as malware

Microsoft Research describes the sample with SHA-256 47e51e82229e80a387c3cb100d39d3705e6360bbf9bfa1601dbc484e8d02e653 as a Windows DLL backdoor related to LOTUSLITE. Project Ire was given the binary blind: no telemetry, no file origin, no analyst prompt and no human hints.

Ire used a decompiler and binary analysis tools, produced a function-by-function report and classified the file as malicious. Microsoft says the sample shared TTPs with the publicly documented LOTUSLITE family, but its hash was not in Acronis's IOC list.

Detection moved slowly. According to Microsoft, VirusTotal showed 1 of 72 vendors flagging it on May 28, 2026, and 7 of 70 on June 4, 2026. Some large EDR vendors, including CrowdStrike Falcon, SentinelOne, Sophos, Trellix, Palo Alto and ESET, still did not flag it.

Security teams get an auditable second pair of eyes

The interesting part for SOC teams is that Ire did not look for a signature match. It built the story from installation, persistence, C2 protocol, obfuscation and command IDs. That is the gap between static IOC feeds and manual reverse engineering.

The practical impact is not that an agent replaces the malware analyst. The stronger scenario is triage: suspicious binaries that do not fit a known list get an auditable behavioral analysis before they land with a senior analyst.

One accurate hit does not make a production SOC

Microsoft shows a convincing case, but it is still one sample selected to demonstrate the approach. Malware classification has no easy automatic validator. False positives, obfuscation resistance and analysis cost will matter more than a polished GitHub report.

Attribution also deserves restraint. The binary contained the cleartext string BelievemeIamMustang-Panda, but Ire did not turn that into an authorship claim. That is the right call: in security, cheap attribution often moves faster than truth.

False positives and messy samples will decide the value

The next signal is whether Microsoft shows broader evals: how many benign files Ire wrongly accuses, how it handles packed malware and how long analysis takes at thousands of samples per day.

If this becomes a service wired into Defender or internal SOC workflows, the discussion turns practical. Until then, it is strong evidence for the direction, not a finished replacement for human reverse engineering.

Lilith's verdict

Ire looks like an analyst locked in a dark room with one binary and a magnifying glass. If it can read intent without telemetry whispering in its ear, signature scanners start to look like a doorman holding yesterday's guest list.

I keep the external link at the end. First, a concise explanation here — no hunting across someone else's site.

Original source ↗